Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft
File: p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft (raw, json)
Hash identifier: cmGQl3yU9GHudefCOpAUYmKRD89U5ngtLpBQlqLBjIY=
Subject key identifier: 5E:70:7C:56:C2:FD:A7:67:AB:4B:9E:86:2E:FB:34:7A:92:33:63:78
Authority key identifier: A7:64:A2:6F:76:35:51:40:AA:69:6E:0A:4F:1F:0C:31:2B:72:77:C0
Certificate issuer: /CN=a764a26f76355140aa696e0a4f1f0c312b7277c0
Certificate serial: 019A53E3E3288AA862796C51C3CF82EF5DEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2Sib3Y1UUCqaW4KTx8MMStyd8A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft
Manifest number: 144A
Signing time: Wed 05 Nov 2025 12:00:34 +0000
Manifest this update: Wed 05 Nov 2025 12:00:34 +0000
Manifest next update: Thu 06 Nov 2025 12:00:34 +0000
Files and hashes: 1: BzSGdKXS_5WRE8i4u-1soKeFtzM.roa (hash: vrT1E18BTpX1mS9gu66zvt/nerXMjovuRA/4FT5P190=)
2: p2Sib3Y1UUCqaW4KTx8MMStyd8A.crl (hash: rj5rI5Qi1gZtdc8m1q4Y0Hui0z9Q+A/1hQSu57g9W4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft
rsync://rpki.ripe.net/repository/DEFAULT/p2Sib3Y1UUCqaW4KTx8MMStyd8A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:e3:e3:28:8a:a8:62:79:6c:51:c3:cf:82:ef:5d:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a764a26f76355140aa696e0a4f1f0c312b7277c0
Validity
Not Before: Nov 5 12:00:34 2025 GMT
Not After : Nov 6 12:00:34 2025 GMT
Subject: CN=5e707c56c2fda767ab4b9e862efb347a92336378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d3:85:74:b3:aa:ac:be:d4:10:b7:01:a8:28:
19:a4:b2:09:ab:55:fa:a3:50:27:eb:a2:e5:6e:3c:
c0:26:5a:0d:f2:3c:b1:8c:a5:fd:2f:b6:43:ca:4a:
e0:18:53:05:3f:5b:45:70:5c:ef:5b:3e:66:dc:82:
9a:98:13:59:96:96:8d:a4:c8:18:7f:19:b9:f0:3e:
27:80:5d:67:f7:b3:3f:ce:23:67:b6:35:db:d9:25:
35:f1:bb:14:4f:f4:85:71:8c:50:fb:be:ec:64:83:
e7:00:88:ba:e9:fe:8f:37:e2:ae:b6:9e:bd:55:94:
e2:ce:22:51:cb:de:db:19:35:ed:e2:ea:60:fc:7d:
51:2e:d1:b2:12:11:e7:72:fa:df:5d:7f:c8:24:ba:
3a:f1:0f:9a:56:81:e0:c7:cb:ed:0c:05:bc:65:cd:
7d:04:58:bf:0e:e9:01:13:f7:cf:56:75:7c:e3:71:
71:a2:24:18:f6:f7:47:77:f2:d9:85:db:6b:f7:95:
3b:cb:5b:29:0d:b8:ea:38:35:bc:74:3d:2b:35:2b:
1b:14:17:b3:c1:65:d7:4e:ce:f2:35:24:68:fa:c8:
27:58:6c:53:0f:a4:4e:6b:14:ae:11:4c:66:a0:ea:
9d:14:e3:99:13:d0:02:b8:8d:bb:15:b2:41:41:c8:
bb:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:70:7C:56:C2:FD:A7:67:AB:4B:9E:86:2E:FB:34:7A:92:33:63:78
X509v3 Authority Key Identifier:
keyid:A7:64:A2:6F:76:35:51:40:AA:69:6E:0A:4F:1F:0C:31:2B:72:77:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2Sib3Y1UUCqaW4KTx8MMStyd8A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1e8183-aad1-4fd7-b10f-ffa4950a1ccb/1/p2Sib3Y1UUCqaW4KTx8MMStyd8A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:78:a1:08:3f:c5:e4:f3:fd:32:ca:a1:96:fd:2a:76:15:93:
2a:1f:d4:19:fd:bb:2d:67:e3:a5:c4:ad:3d:73:9a:5c:f6:02:
81:a5:50:45:4a:ca:9a:e4:f2:0a:ac:6f:46:b4:79:a8:81:08:
37:9a:32:0e:20:39:f7:24:fc:3f:dd:3b:35:33:b6:79:7b:21:
85:5e:03:8c:f8:59:21:4e:68:9b:91:14:f9:71:55:44:01:e1:
fb:ea:52:04:6b:32:61:b6:66:66:43:65:9d:1f:90:af:4e:60:
c0:b3:34:39:5b:5c:de:56:16:e2:d3:e3:f1:eb:9b:78:54:28:
a2:c4:21:e1:ab:70:2b:7d:cb:7f:1d:d7:3d:a4:0a:cf:e4:a2:
f6:86:ab:e5:3c:d3:67:92:7b:e7:bb:98:59:cf:d3:8b:c5:19:
f0:13:5e:3b:d1:f1:f1:d8:69:ce:e4:78:8b:d7:2a:c9:d1:fd:
d3:66:09:5c:a9:90:49:bb:44:a9:ba:17:f6:fc:45:f8:b5:ff:
1f:dd:3e:93:a1:c5:7b:a9:d3:b7:64:fe:56:67:59:50:85:c4:
f1:bb:d5:a2:81:ae:04:fa:0f:23:c7:38:a7:57:96:1f:99:fd:
98:f2:79:58:fa:bc:03:cd:bb:4a:95:c9:7a:46:f0:10:39:43:
9d:1a:af:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpT4+MoiqhieWxRw8+C713uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3NjRhMjZmNzYzNTUxNDBhYTY5NmUwYTRmMWYwYzMxMmI3
Mjc3YzAwHhcNMjUxMTA1MTIwMDM0WhcNMjUxMTA2MTIwMDM0WjAzMTEwLwYDVQQD
Eyg1ZTcwN2M1NmMyZmRhNzY3YWI0YjllODYyZWZiMzQ3YTkyMzM2Mzc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9OFdLOqrL7UELcBqCgZpLIJq1X6
o1An66LlbjzAJloN8jyxjKX9L7ZDykrgGFMFP1tFcFzvWz5m3IKamBNZlpaNpMgY
fxm58D4ngF1n97M/ziNntjXb2SU18bsUT/SFcYxQ+77sZIPnAIi66f6PN+Kutp69
VZTiziJRy97bGTXt4upg/H1RLtGyEhHncvrfXX/IJLo68Q+aVoHgx8vtDAW8Zc19
BFi/DukBE/fPVnV843FxoiQY9vdHd/LZhdtr95U7y1spDbjqODW8dD0rNSsbFBez
wWXXTs7yNSRo+sgnWGxTD6ROaxSuEUxmoOqdFOOZE9ACuI27FbJBQci7AQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF5wfFbC/adnq0uehi77NHqSM2N4MB8GA1UdIwQY
MBaAFKdkom92NVFAqmluCk8fDDErcnfAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDJTaWIzWTFVVUNxYVc0S1R4OE1NU3R5ZDhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8xZTgxODMtYWFkMS00ZmQ3LWIxMGYt
ZmZhNDk1MGExY2NiLzEvcDJTaWIzWTFVVUNxYVc0S1R4OE1NU3R5ZDhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi8xZTgxODMtYWFkMS00ZmQ3LWIxMGYtZmZhNDk1MGExY2Ni
LzEvcDJTaWIzWTFVVUNxYVc0S1R4OE1NU3R5ZDhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo3ihCD/F
5PP9Msqhlv0qdhWTKh/UGf27LWfjpcStPXOaXPYCgaVQRUrKmuTyCqxvRrR5qIEI
N5oyDiA59yT8P907NTO2eXshhV4DjPhZIU5om5EU+XFVRAHh++pSBGsyYbZmZkNl
nR+Qr05gwLM0OVtc3lYW4tPj8eubeFQoosQh4atwK33Lfx3XPaQKz+Si9oar5TzT
Z5J757uYWc/Ti8UZ8BNeO9Hx8dhpzuR4i9cqydH902YJXKmQSbtEqboX9vxF+LX/
H90+k6HFe6nTt2T+VmdZUIXE8bvVooGuBPoPI8c4p1eWH5n9mPJ5WPq8A827SpXJ
ekbwEDlDnRqv/w==
-----END CERTIFICATE-----
Generated at Wed Nov 5 16:14:25 2025 by rpki-client